Skip to main content


 

 

druva_logo.pngDruva
|
Documentation

How can we help you?

Trending articles:

 

Druva Documentation

How to enable secure LDAP between inSync AD connector and domain controller

  1. Last updated
  2. Save as PDF
Heads up!

We've transitioned to a new documentation portal to serve you better. Access the latest content by clicking here.

 

Overview

You can use Active Directory (AD) with secure Lightweight Directory Access Protocol (LDAP) to manage inSync users of your organization.

Note: Secure Lightweight Directory Access Protocol (LDAP) requires a properly formatted X.509 certificate on all your Windows DCs. This certificate lets a DC's LDAP service listen for and automatically accept SSL connections for LDAP traffic. Secure Lightweight Directory Access Protocol (LDAP) will work with inSync AD Connector server only when this is enabled in the AD/LDAP server.

Procedure

To enable secure LDAP between your AD/LDAP server and inSync AD connector, complete the following steps:

  1. On the inSync Management Console menu bar, click Users and then click Deployment on the left pane.

  2. On the AD/LDAP page, click the Accounts tab. The list of all the registered AD/LDAP Accounts is displayed.

  3. Click Register AD/LDAP Account. The Register AD/LDAP Account window appears.

  4. Select the Use secure connection check box If you want to access your AD/LDAP through an HTTPS connection.

    clipboard_ebd5ff0ec3b31cd8ed49062f63fd3a27a.png
  5. Fill in the following fields:
    Field  Description

    Directory Service Type

    Select the directory service type that you want to register with inSync Cloud. 

    Available directory service types are as follows:

    • Microsoft AD 
    • LDAP (others), are other services using LDAP protocol, including OpenLDAP - an open-source implementation.

    AD Connector

    Select the name of the inSync Connector that inSync must use to connect your AD/LDAP with inSync Cloud.

    Host

    Type the hostname of the server where the global catalog or the domain controller is available.

    Port

    Type the port number required to access your AD/LDAP.  

    If you are registering the AD/LDAP by using its domain controller details, you must use 636 as the port number for a secure connection or 389 as the port number for a non-secure connection.

    If you are registering the AD/LDAP by using Global Catalog server details, you must use 3289 as the port number for a secure connection or 3268 as the port number for a non-secure connection.

    Use secure connection

    If you want to access your AD/LDAP through an HTTPS connection, select this check box.

    If you are registering LDAP as the Directory Service, you must enter the following Attribute Mapping details.

    Email

    Type the LDAP attribute that should map to inSync email address.
    inSync Username Type the LDAP attribute that should map to inSync username.
    Logon Name This is the distinguished name of the user. This is used as username for LDAP based authentication.

  6. Click Register. The AD/LDAP is registered with inSync Cloud.

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.